npm package

serial-number

pkg:npm/serial-number

Vulnerabilities (1)

CVE	Sev	CVSS	KEV	Affected versions	Fixed in	Published	Description
CVE-2019-10804		—		<= 1.3.0	—	Feb 28, 2020	serial-number through 1.3.0 allows execution of arbritary commands. The "cmdPrefix" argument in serialNumber function is used by the "exec" function without any validation.

CVE-2019-10804Feb 28, 2020
affected <= 1.3.0
serial-number through 1.3.0 allows execution of arbritary commands. The "cmdPrefix" argument in serialNumber function is used by the "exec" function without any validation.